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Slili) Softwar® |jay pm yss 



(if) A pay pes' uss system for ths prsvsi-sfio!-! of fhs 
urmiSKSized uss of ccmputw sofs^'am. An eo~ 
oVPJkm pregrsim ieroxtes origmsf softwsm to 
prs>dyc« s«X!rs<:i soflwsfe. The eno.odirig is ac- 
■3a??^p!fshed by ossfiig raypfogfaphic f85:;f;nkssjes. 
\n oj-dsF to am fhs soffcvars, 8 user m«sl e'aff a 
telsphion® number fo mcsive the cryptogmpfite 
?<sys necesssfy to decrypf: the secursd softwam. 
Thtis, os««; RXist jssy Px each use of &i8 sec- 

valopSFS fo fmeiy disfsl&tjts ff^e sscijfed 
soffwara. Copies of ths s«a<:S'od soRwafs msy 
be frssefy mads, bgcatsisa psyfTs^nt ss basad or? 
sssch «S8 of ths sfiftwafa jxrt on SEich fx>py of 
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This mmfiimt rsSates gerisfaiiy to fes {jcoteotson 
of eofiiptiter software from liiiegai copyifig, Mora par- 
tfcuter^y, this fnvs-ntfcn s-sistes to a pay par yse pro- 
tectbfs tgchnSqwe sn: whsers s user must mate a tele- 
plxsifs call in ofds?- to use p«st»cfed ssflwasB, 

Saftwam piracy,, the iiisgjsi ca>pying of oon-sfnef-- 
cM ftomptiter progcams, is a major j>robiom in t hs per- 
sonal c-omp«Sor spdustry, Soflwsm dsvetopers c«r- 
rsnlly have three common technsjues to prssvent ilie- 
gai copysng of thesr sofis-vars. The f Srs!: is H-se os« «f 
hardwam "keys". Thase keys am devices thai attach 
to a compuSer s ^m^i port. Bofere starting, the soft- 
waro attompts to query ths key. If there is no rs- 
sponse, or an sncrjrrecl resporise, the software w8l 
!>c<l start. Tf!» second tecrsftiqoe is the use of a ksy 
4kk. Thm m like a hardwam key, sxcspt the key fe a 
floppy disk that must bs in the ccmpySers disk drive. 
A ih i rd Ischn i q« is f o seH sopy-pmtested sof Ivvarg, lis 
this fechniijus, the davetoper puts the program oo a 
floppy disk in such a 'torn that a direct copy of the diai< 
will produce at? irscorrtjct copy of the software, 

Aii of ti-!8 .attovs jTfgntiofieci tecliifjiqesa have prots- 
tems, Thay rej^uire ctevsioperst to Ifioerpcrata piraoy 
protaoSiori irsto their ptcgrsms. They am brittle, maan- 
iftg that ones a single copy with the protection drcy rn- 
v8nt->xS sxisss, the pfot-setiofs Is useless. Also, they 
cs«8» Incorsvariisnce to lagifimate tssers of the soft- 
ware. An ideal protaotiori schema would mai^e it 'm- 
pcfssihio for peopia to «sa «x>mm®rcsai softwsrs iiia- 
gaily, wllhouf posing srsy inconvofsiofsoe to tiho dsvol- 
cpsF or the user of ttia softwars, 

Generaliy, the prssont inveffiien pswvides a teati- 
nkm vi^h is dcsa to ths ideal, it is bsemi iipon dis- 
tdbutifsg s^oftwsrs m such s way that ussers must fee!) 
a toifipiTiono rsumbertogettho software* to work. If tho 
lelophone call is to a number w hich results In a per cal! 
service fe-e, msH as a "900" num&en then making the 
caii guarantees that tbo users pay far Ihs «S8 of tha 
softvi'sra, 

l.'lQre speofficaliy. an encfyption proQfan'! con> 
verts any existing prc)0ram Into a mw pro§rsa> called 
tha sacyred software, Tha secutsd seftv»'are Is a pro- 
grasr? that osntains tho orlglRai .software in encoded 
torn?. The enss'yptlon progr'airi, s^-i'sen conslfuchftg the 
secured software, heth corj^pressss and encodes the 
onglrsal progmm. The eomptessior! femovas most of 
the redundancy, making codo-hreakiog difficult, and 
reduces the ske of the secured software, Tt?e resait- 
iag prcgmm contains the original software in a eom- 
piet sly unreadable fomi. 



The risveleper n-;ay than ciiSi rihuts the sec-;;'oci 
-scitlware ireeiv. To i.;se tt!S> so^tvl,';3:■..^, user calls a 
teiephc;ne riunsber, ffOU': svhis:!^ the i;sef gess a inin!- 
t-er that the secured sell ware uses tc decooa tne asi- 

5 crypted compuf.sr progran'!. This tsiaphcnc ntimssr 
may bs a nrifni::er (hat results in a p«:r call sfrrvicsi tee, 
in s^hiCih oase ihe act n'laking hie saii guarar-iees 
that sha user pays; tor tha use of the scfiware. 

Several variatsor-is are possipis For s^.si-npie. tns 

nf secured softw.ars may control diaiiag the telephone 
fiurr-ber ii-ir^-ugli a modarr; anri running ttie cci;5e 
transaction auSornadcaiiy, .A single cail iriight inc-re- 
msnt a c,our:fe!- in tha software- ;o aiiow r7'iu!tip!S usas. 
Free •OiSptiOfie servic:«. such as an ",500" nun;h«ir, 

IS could readily tse provided Jhfosigti wtiicri potenh;ji 
ussrs <;«;■: ciovvnioad secured soltware. Addilioriai 
sers'ices might be rsaoify pnwiriao. 

Te 5he seltware developer. She present itiventlea 
pEOvides at; additiorial diS-ubudcn sr-uroe for >vf)icri 

a' there is iitlie cost -the encryption program in :Ss sin>- 
piest forn": does nci; have to bs :nccrporatsd into ihc 
sofi ware To She user, there is no difficulty with back- 
ups and ao clarigert-l losing a har;5\vere or floppy disi, 
t;ey. All that is needed to run hie sol t ware is a shone 

i'S call, "fne user also has tha opuon of trying osjt tns 
software tiofcrsj spenainjj a ccnsidarabia amount to 
pursjhase It 

Fig. 1 1s a block diagram ofm implementetfon of 
the system* of Ihe present invention. 

Fig, 2 is a feiocfs; diagram iliustrating software reg- 
istration and gsrserstlo!^ of secured software, 
3S Fig. 3 is a block diagram of a firs! emisodlmsnl of 

a pay per use software validation taohnigue. 

Fig. 4 Is a blockdiagram of a second en^bodimant 
of a pay per use software validation tochnique eddlag 
random number gen:Br3:ti£>u by the validation system, 
40 Fig, 5 isa blockdiagram of a Ihlrci embodiment of 
a pay per use aoftware vaiidation technigue adding 
encryption of the ganeratod random aumbars, 

Ckstailed Descrtgtlio« 

This Invention is described with referaoce to va- 
nous data encoding and dacodlng tochnigues. Thus, 
a tjdef espfarfation of basic crypf'Sgmphy follows, 
CryptographiP systems generaily transform data 

m through tha use of two bssio elements, a crypto- 
graphic algonthm and teys. The crypfographic aigo- 
dthm contains pmcedures for encoding and deciding 
the data. These encoding and decoding pmoedures 
ar« ganeraiiy Idantical or may consist of tha same 

S5 steps performed in reverse or^Jsr. The teys, which are 
seiected tjy the users, consist of a sequence of num- 
bers or chamctars, which are used by If^e crypto- 
graphic algorithm to code and decods the data. In the 
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followi-tg detsiSed dsjscf istion we ciiscuss two types of 
cr ypts^irsp h ic. sy st sms. 

The fsf sMyp« of system ss the ssrigle k«y sysleB>, 
\nihh type of system a SiSgie ksy is us«d he both data 
encoding ar>d decodsfig- Thus, in orderto ensuro pre- 
tectbfs, this H«y must b» ksspl sfscfst. In this dgscfip- 
tierf we mfer fe Ihs Dsia Enss'yption Standafd (OES) 
single key technk?u«> Tftis is a daSa sncf ygitiofi testj- 
rssque fMoh im been fsccopted ss a standard i>y the 
K5ati!>riai Bumssu of Stafidards*, arsd is wsil know:! to 
ofsa sksiied in the mi of crypsogs'sphy. 

Artoti'ssr type oi systefii is a pobisc key systetrs. In 
this type of system, instead of u^ftg om key for both 
datcj encodsng and decoding, two ksys arss «sed, one 
to encode ti;s dafa and ene k> defrsds ihe datss. Gsn- 
es'aiiy one key »s made pubiic and Ofie key is kept pti- 
vata If the puUki k»y is «s»d to oneods the data, then 
the priyato ksy is used to docods the dats, and vice 
versa. An impeftani aspect af this type of systosTi is 
that it is isTfposssbie to detjuee the private key f mm tfw 
public key. i*ahHci«ey cryptegmph;*' is siso vv^ii knc-vm 
to on« skiSisd in th® sirt of cfyptogfaphy. 

■Tff» data encryption and decryption tecifs^icisjas 
we discuss- Mm as's for ilinstmtive purposes. Varioos 
other teohrskjuss couid he substituted for those do- 
sedbed herein vvithdut departing frtsm the scope and 
spint of the iover^tion. 

Fig, 1 iiiustrates one possibie implementatiors of 
a system acooi-ding to the preserst invention. The sof t- 
ware vslkMiOii systosT* 1D0 comprises a contrsi proc- 
essiTtS unit 102, a rjiemory unS 110, and a msxism 
1D4, The centra! processing unit 102 is connected to 
the modem 104 and the memory unit 110. The mem- 
ofy 110 contains software rogistrntfon progrsrn code 
111 to irnpSemsnS the fynctiona fssqylfsvcl d«!^fi§ tt>e 
software registration process, software validsfion 
progt'am code 112 to impiemsnt the functions re- 
quired during the software validate process, and a 
storage area 113 for the sforags of softsvars identifi. 
cation ij'ifprmaticsn and assooiaied keys, Ti'ie n>ai»m 
1 04 is iised to tt^nsmit dats to arsd receive data from 
the software deveioper system 1 2*3 arsd the software 
user .systarn 140. 

The software developer system 120 j»mprises a 
central processing unit 124. a modem 122, arsd a 
memory uftit 130- The central processing unit 124 is 
connocied to the fj»dern 1S2 and the rTjofnory unit 
130. The memory onil 130 oontainsi origSna! aofiware 
131 an encryption psxsgram 132, and secumd soft- 
ware 133 after it is gons^rsted. The odginsi software 
1 31 is tho software the devoioper wishes to ragister 
arid protect. The encryption program 132 is the pro- 
gram which interacts and communic-ates with the 
software vaitdation system 100 during software reg- 
istration and genssration of the sacured software 133. 
The secored software 1 33 contains an encrypted ver- 
sion of the ofiginaf softwaria 131 along with oser vali- 
dation software. This user vaiidation software is pro- 



grarn code that wiii i.nteractand communicate with the 
srjftware vaiidtstfon: system 100 dsshrig softwara vaii- 
dation. These f unctions af« described heiow In cosv 
Junotion with Figs, 2-8. 

The software vaiidation system 1 00 and the sof t- 
w-ara developer sysierr; 1,30 cornmunicata with each 
other over a ccftirnunscatbna nstwcrk 160 throc<sh 
the modems 104 and 122, in ons embodiment, the 
commrinicatlons network 160 is a puhlic telephone 
10 Sine, 

The user systerJ-s 140 comprisas a centra! proc- 
essing iinit 144, 8 modem 142, and a mertiory unit 
ISO, The central processing yr^st is connected to the 
rnodem 142 and the memory unit 1.§0. The memory 

IS onii ISO contains a copy of the secured softv/are 151, 
which comprises hoth tho encrypted originaf software 
and the user validation software as discijssed ahove. 
This secured software 1S1 is a copy of the securssd 
software 133 which was gener^Jted by the software 
deveioper system 120, 

The validatksn system 100 and the user system 
1 40 eomrnonicate with each dthar over a communics- 
hons n»lwc-rk ITOthn-xigh the moderns 10.4 arid 140, 
in one smhodiment, this eommtinloations network 
1 TO is a public telephone line, and the communlt^ahon 
is Irntisted by the ifser system: 140 dialing a telephone 
number which reaOit,=5 Irs a per call ssrvios fae (e.g. a 
fes setfor dialing a "800" numfesr j, Tbis cafi would en- 
sure that the user pays for each ma of the software, 

3;j Tho generslion of tl"!® secured >software 133 and 
the rrjgistration of tha software wish the software va.- 
iidatson systero is desoribed with reference to Fig, 2, 
The hrolien line SOS: reprasents the separation be- 
tween tho softwam deveioper system 130 and t.he 

3S sof i ware valldatiDn system 10C>. Figure eleroaots 
shown above line 202 rapresent functions which ai« 
performed by the softwam valkiatior! system 1 00 hy 
exscutfob ofthe software registration cods 111, and 
figure eiemafjts shewn beky<w line 202 represarji f unc- 

4!) lions which are perforftsed hy the .software devaleper 
sy~etem 120 by execution of the encryption program 
132. Data which Is sent tJotwoen the two systems 
msijst he transrnitted across the commonications net- 
work 160, The sraBsroission of dale over the corfimc- 

*5 nieations network 180 is represented in Fig, 2 by lines 
crossing dividing hne 20:2, 

Tho first step 210 Is for the software developer to 
{jolleot software Sdentlfloation informalicn, TbsJ infor- 
mation consists of the name of the software, t,he 

m name of the software developer, the address of t.he 
software deveioper, and any other irjforrnasion which 
may he desired. This informatiorf is transmittad 
across the network 180 to the software vaildalion 
system 100, In step 204 the software validation sys- 
tarn 100 will store the software idontificadoh Informa- 
tion in r^iemory 113 and will select Iba nextIO number 
for the softwera. This ID nomher Is any unique Idon- 
tlfierforthe software. The vaiidation system 100 then 
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geiies'sses 8 random pijblia'pnvatti key pm mii gm- 
tmmm a ra.fsdom DE8 key in step 206. 

The garf&rated rsndofn psivate key and ih& g«n- 
eratsd random DES ksy are stofe<S in the seftwafs 
registration systeni memory 113 ssorsf with the soft- 
wars ID nuRiber in step 208. Rstyrnsng now to tes 
software deveieper sysian^ 120, ihe osigk^js! software 
220 iis converted into a packed fite in mp 218, The 
method used to psci; tho odg inai softwam may be any 
suijiibss dsts compRsssiOfs techrssiuo, suci"! as Hof '- 
mars encodscg, vvhiah ® wsii ksiawn iri the art Thss 
cempmssfen removes mM of the redui^deney in the 
software, making code breaking dsff isult, end reduc- 
es the sis® of Qm secured software. The f i!« h@ad»r 
f rom this paoked fils is Ihen marypiM in step 212 «s«- 
ing the DES key gsnamled by the eof twasB vaiidatien 
system, Onsy the fiSe header is erscrypted since the 
pscked f iio csifiiiot be «fspsckgd without ths f iio hoad- 
sr. ThiiS. sijf f icissot protection ss ensured by socrypl- 
ing onty tf>e fiie rseader. The packed fiie body and tiw 
DES encrypted header which were generated by the 
software doveSoper system 120, snd the pmIjIss key 
and Iho sofiwere ID which v^ere generatfeX! by the 
software validation system tOO, as-s then used to 
b«lld the secured software in step 214, The secured 
software 21S may then be distdijuted to users for use 
in accDf dance with ths invealscn. in order for a sjser 
■e t,!Se the seoiirsd software, it: srfost i>e oonvertad irtte 
en exeoutahie n"iOdtite in scocrdance with the presenS 
Invention. 

A flm embodiment of a pay p»r sjse vafidaiioft 
teohnsqsj© is desoslheci is> ooft|5j notion with Fi§, 3, The 
bmken iine 302 s-epresente a sepamtion between the 
software validation system 100 and the user system 
140, Figum aierfssnEs shovi.'n: abcva I ins 302 fSsprescnt 
■ unctians perferrneci fey the software vaisdaiico sys- 
tem 100 by exeeuticn of the sof tware vaiidatiort code 
112, and figure eiements shown below iine 302 r«p- 
reseni functions performed hy the «.!5er systsrn 140 
fey execution of Ifee oser vaiidalion software portion 
of the seoured software 1S1, .As^y data whioh is 
passed between the pay per use validation system 
100 and the usar systsm: 140 is reprBsented by iines 
crossing dividing iins 302 af5d must he irerfemilted 
ever the ccmrniinicatlons networi?: 1 70. Data is most 
vulnerable to unauthorized access by an ynautho- 
rixod oser when it is Iransmitied over the cornmoni- 
cations network 170, 

The first step 31$ is to trans«?!t ths scftware iD 
number to the vaiidation system 100, This is the 
unique fD number which was assigned to the soft- 
ware during the generation of the securetJ software 
(desGEibed in cenjuncison with Fig 2), In step 308 the 
validation system 100 will use thie ID numt>er to credit 
the softwrsre developer's aceosjnt for the use of the 
software. As discussed above, iff one emhodirnentof 
the invention, a oser most call a per ssM service fee 
telephone number in order to initiate communication 



ovef tne oomm;.;nicaiions naiworK :?0 Tnus, the 10 
oumce? ai'iow^; ih•.^ v.^sSicust:-;;' svs^:^m 100 tiredit ihe 
a>.;oouri: of tfee neveiops: <;; tiio soitwiitre whici; is be- 
ing vaiidated, i'i^is \D numfeer is also used to look up 

5 the private key in step 304 and the OSS key in step 
300. :X;?h of wh;Oh wefe geneseied and storiK- Ui inn 
va;i(;ahon syaiem mesricry 1 - during she softsvafe 
registration an-J generaiion ci ti^e secured sofiwara, 
The user system generates a i'andom nomcs!~ 

10 (R1) in step 320 and encrypts that ranoom number 
vsitn she p-ui'lic i-.*¥ in step .5 16, Tne randofn nun-it-er 
!S encrypted s,o feiai wi^en li is transmiUed \o tne va- 
iidation system ;00 Ov.'er tne communicaticns net- 
work 170, a person atiempi-ing to Cir-.ximven! !h;^ pfo- 

is t-jono-i scheme oouid nos iniofceDt U-e tandoni nuns- 
bar, r.ha vs-idaiJof- sys,ieni 1 \0 wiii use ihe private key 
otJtained in steo 304 to oecryot the rsndosi-! number 
generiJied ny ^b;^ seamje sof tware in step O iO. The 
decrypted mnucm number {f^"t is. ^-xckiijive 
ORed Witii ihe DbS key in siep 312. fhif; --esuits in a 
DES key maskec by the randon-; n^imher generated 
i)y tne user sysSem, This mj-sked DE,*S key is i fieri eri- 
oryptJK: v^iti? tiie phv;3ie key ir- ;5iep 314 .sad Jransmi-- 
■ed to the user syetem i-ife over the con^rnufiicaiions 

i'S nelwori< 1 i'O. T ne user system v;;-; ;hen use the puhitc 
key to decrypt !he n5,-5&i>,ed Df9S key :n s-ep 322. Tne 
resiiit !S ii-ie f)f:.S Key masked by - be rjsndii-r! numt'^r 
{R-i), This iviasksd DES key is; iberi ufi;rs3Sked by ex- 
ciusiveORii-ig stsvith therandcm numperrRI) in step 

3;J 324 The result is an !.inmasl-,ed, unenorypied DBS 
key. Tnis is ihe san;•:^ D^S key i\'hit:n was ,.i:sed tr; Sf)- 
crypi ifee onginai softwiste, 1 fie DEB key is men sjsed 
to decrypi tne a!\cryoted isie nearer sn step -326. "ine 
rostiit is an unoncryptad fiio header whicn is then 

3S user; tti unpack She packed ■ iie t'ody in siep 333. The 
resi.1t is a sof twiKse execuiefeie file wi^icsi mey ther; i>e 
execotao 330 or; me -jser aystam. 

As discijssed above, ibe weakesi points in itsir; 
v^iiki.ahof; pn)ce!5s ,afe wf••.^r•.^ data is IransniiUed 

4!) across ti-ie cc;;r!(;vjn:c.atione nstwrjrk 17f3 because It is 
at thasa posnis ihat an unauibonzed user couid most 
easily atiempi to iniarcspt and record tne dsia -nai is 
being transmiiled One Vi'ay to cifcumven; tf^e s•.^- 
ciired «.--iwar« pic-echoii woriid be ic alter tf» raiv 

*5 dcrn ivjmher generation posticn cf iha user vaisdat-on 
code in ihe secured setiware tbl so xfjat tne same 
random riijrnijer is ;5iways Cjonoiaied. "Tn^rn -iie use? 
oails -he >«iep.ncn« nun-ifeer once, Oivsn^ tne fixed r;?,f;- 
dom number and record? wi-iai ccn-ses feac-k. S-noe tne 

su progran'i has been altered to always generate -hfs 
same rsn-iocr;? !X:mf)ef. di-; infcrmation tna- w;5s r•.^• 
ctjrtieci is providsiS tci she securer; softws-fe upon eac^i 
subeeciuent exec-jucn. One scfeeme to pcevenl socn 
unauthonzec use ss descritjeci seicw In conjunction 

{is wiii": ,:s se;:ond eninc'dimerrt o? a p.-5y fJOf u^:e vaiida'ic.'n 
tecnniijue, 

Ti5:s- secO!-:d eiobodiB-iani ia described in oonjunc- 
hon With Fiji. 4. tnis emoodlmenr. a .seccind random 
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number !s gen^^rated m fh® vaiidatfen system 100, 
This rfsndom nomber Is concstfjnsteei xwth ths rsndosji 
iHifwbsf ftxitti U>8 usi&r sjysfefn 14.0, ssod th& ccmbined 
faiidam number is ussd to ssiasK and unmask ths DES 
Key, This wiii bs cisar ixtm tse foibwing dsscfiptiofi 
<s? ti^is &mbodim?3"st ki -sonitiricSisn with Ffe, 4. J^is 
secaiK! emixjiSimejit is sisTiiiaf kitiisfiristsmfesxiimeffl: 
shows-! in Eig, 3, Th«s, anfy the diffes-ences between 
the two embodimsrsts wi!! be diseus^sd Hers. Uise 
numbsmd eksmarits in Fj^, 3 and 4 pjsrform iifes 
iiirsdians- 

m the second emhodiment, feoti^ ihs ysiidatiori 
system 100 asid the tiser system 140 gefierat© ran- 
dom Tsumfo«srs St; sisps 320 and 332. h^s step 334 the 
vniidntson systesTf 1 09 coficatenafss th& s-jsndorn nusvi- 
bSF CR1) it genemtsd and ths rsndsm nsjmber iR2) 
geiiepsted by umt system. The requiting random 
rRimb^f (R1 RS) is timrs mdmiw OBsd with U^e OES 
k«y in step 312 to produce 3 rnasfeesJ DES key as dis- 
cussed in oQ.n|unction »fith Fig, 3- Tbe m&i systesrs 
140, like the y3iidatio.n system 100, cofjcsterjates the 
random rssrmbsrs R1 grid R2 in step 336, The rgsuiting 
Ksrfdtsm nomixif (R1R2'i is h-spn used to tii-!«iask Eho 
DES key iff step 324 as discussed above ffs eonJu«c- 
tior? witii Fig. 3, Ttis !^8m8^Pderoftbe functions of em- 
bodiment two sre ths esme as descriijed in cf>n|unc- 
tion with afnbodfmen^ona and 3. 

Ti'iis second embcdimenl as si>a»?n in Fl§. 4 adds 
extra protection 'to the first embodiment discussed In 
conJunctiGn with Fig, 3,, Since the vsiidatton system 
1 DO aSsa genes'sstes a randans E5umh»>>r and then con- 
eatanates that randnsf! ntimher wi^ii the randcrn mm- 
bm generated by the user system 140, ttie mesKing 
of the DES itey depends upon boti-: genemted random 
msmbfisfS, Tiujs, sven if a u-ser cs>uid fix &>b random 
nsimbered generated hy the secured sc<fSvvat« to he 
tbe same each time, the random numt;er generated 
by the vaiidv^ffon scheme wouid be different and 
therefefs, the usar f»uid n»t osrroctiy ursmask tha 
DES key. 

A tbird embodiment of e vetidetion tecbnsgne ec- 
oerdifjg to the present inysntion is discussed in con- 
jsjnctipn \«!ti> Fig, §. This fefnbodimant adds sayem! 
features ta ti^e emtjC^iimenis sbov/n ii-s Figs, 3 and 4, 
The E^ndcm r?ymt>8r (Ri ) generated iri tbe vaiidatiori 
system 100 is encrypted before tseing transmitted to 
the ussF system 140, Aiso, ttie rssndom numbsr (R2) 
generated by the user system 140 is n<si itseSf tj^ans- 
mitled to the vaiidation system 100, These details wiii 
become ciearfrem the teiiowing disotission sf Fig, 5, 
The aiement.s of ttje arrjlx'dimont si^own in Fig. S 
wbsGii am tbe same as these aiready discussed in 
conjunction witb Figs, 3 and 4 wiii not be discussed 
in detsii iiere, Oniy the additiouai steps of the emhodi- 
rfisnt shown in Fig, wiii |ja do-seribad tJeiow, Eie- 
rnents in Fig. 5 with ilka numiJefs io eierf?efils in Figs. 
3 end 4 perform like functions. 

Referring now to Fig, S , the f^ndom rsomfoer (R1) 



generated by ti^e vsiidstion system in step 332 is en- 
crypted with th® pnvata kay in stsp 340 i>efefe i>eing 
tf-ansm it ted to the user system. Tiie encryptad ranr- 
dorn nomder is decrypted by the user system in step 

5 346 and is then concatenated In step 33S witi^ ti-se ran- 
dom numl>er {R2) generated tjy the user system in 
step 320, Ttje resuitsftg eonsJistenatad randem riorf^t>er 
(R1R2} is then encrypted with tbe pudiic key in step 
31>3 and transmitted to the veiidstion system. The en- 

10 cryptefd random number is than deoryssted by the va- 
iidation system in step 310, The vaiidatson systet'n, in 
step 342, tf^en checks to determine whether the ran- 
dom nnmiser it generated in step 332 (Rl ) is the seme 
as tha R1 nortlon of the random nurnheF raturned t>y 

IS the secured softsii'sre, if R1 has tseen medsfied, it: in- 
dsostas thai the random number has bean manipuiat- 
ed in some way tsy the user in an at tempt to defeat the 
protection, and the process is haitad. Otharwisa, ti>e 
vaiidatson system; sises the concat«nated randorn 
number to mast; tbe DES key in step 312, The system 
then continues in a manner simiiar to that sxpiained 
aisovs in tiopnactirm with the ambodiments of Figs, 3 
and 4, 

in the emtxidiment of Fig. 5, the random number 

i'.s (Ri) is 8nc3~ypted before being trensmitted fs'^m the 
vaiidatson system to tbe user systsjm, Simiiariy, the 
concatenated randem tjuimber Rl R2 is encfypted be- 
fore being transmitted from tbe user system to the va- 
iidation system. Note that the random number (F?:2) 

3;j generated ijy the user system is never itseif transmit- 
ted t!3 the vaisdatiPn system, Thesa tachnsquas maka 
it more difficnit for an unauthorised user to defeat the 
protection scheme hy aitedng the s-andom number 
generated by the user system 140, 

3S Thara are other pi>ssii>ie tachniques fa? tbe pre>- 

vention of piracy by altering the random numtser gen- 
eration. One technique is to not generate or keep a d i- 
reet; compiste copy of the random number in tbe user 
system. This appraach wiii make it difficait for a user 

4!) to determine exactiy wi>atthe current random number 
is by directiy examining memory. For ejsampie, the 
random number couid iss provided by adding orexciu- 
Sfva ORing savefa! bytas sn mamary. The random 
number is then generated in the user's ssystem only 

*5 when needed andoniy one byte{orwoE:d) at a time ex- 
ists in a readabie form in the -system, ,4nother techni- 
qua to prrsvant ihs altanng of the random nsintbar gen- 
eration is te do a cyciicai redundancy check of the se- 
cured program cede to make sut« it has not bean 

m modified to provide a f i.sed random number. Another 
technique ijs ta include as f>aft of tha random number 
some eassiy verified infofmation, sucb as the approx- 
imate time. Then, when the seoumd software coda 
uses the random number, it can deten'rsine if the time 

{>s infdrmahon is aarract. If not, the random nurnher may 
frave tseen aiter^d and the system couid ai>eft. These 
techniques for pmventing piracy through the randem 
number generation are gi^/en as examples only end 



s 



9 



10 



a?8 not sJxhausUve, Om skf ^isd in the m coukj impis- 
msrsS thss8„ and otiiar techrsSqu&s in oreierto prtsvent 
psrscjf' through rfmfsipuhsSbfi of ihs sjodam numbsfs 
gsnefatsd fey tM aser system 140 and ths mtvmm 

Anojh^r passsbis way to sttemps to csreumv-enl 

el'thfe 5J88r sysfem aflSi- IM DES k%y is received and 
tiecoded, Tliis approach might ravssi the DES key 
and KXiid rendarltse sscurSy fsafuras of JiKo system 
ineffedive. TJ^sfsamseveraiteci-soiqsiesswhfchwaqid 
pmvBnt this piracy, Ons teciiniqus is to spiSi tins pre- 
greim CG«Se into sevsrsi segments each with s sepa- 
mto PES koy. Ths abovs (ksc-ibed decryption tech- 
rfsqsiss fsxild be rsspeafsci s«v»yaS times tsJ pfeveni: 
having ali naosssss'y D6S keys in mesrfory simjiitans- 
pysiy, Anotharteptiniqpo wouid he to atore aegments 
of tho DES k<sy in sevem! piaces tn momory so as to 
mak« finding jhs &ntke. DES key more difficnlL Ao- 
ofh«f technique mskss use qf the fact Si^isl: storing 
sagmsiits of tiie DES key in srsdSreotl^jrm in memory 
Will sTiaks dotsrmining the key dfffiajif, For sxampie, 
by ssciusivs ORing sectkinij of ihe key with other riJn- 
dcft> aactions of mamory whsfi naaded> wcuid pre- 
veai an exact copy of any part of the DES key from 
ovor oxisting inm<emof y. Examination of ssversi ioca- 
jiofjs sf! merfiory wduSd be necessary so dfifermioe 
eech byte ef ths DES key. 0ns skiiiied sn ths 8!1 cquid 
i mplement theaa and othar tachniques to prevent pir- 
acy by esaminfog memory to dotemiino the DES S^ey. 

AopSber possible piracy techoiqijs csxild be to &k. 
amina and copy ths roemci'y of ttis issef system after 
tha seetsrad softy!.'ara ties been dacoheh. At this point, 
tho orsginei software exits in an eKsc-ufable format in 
she tjser system. There are sevsrai posssblo techni- 
ques tc pE^ivent this type of pSracy, For axaropfe, an 
i!"!tarrtiipt routine based on a timer interrypt couid ba 
added to the secured softwars. This rotitino wouid sx- 
amifio the pFiXsmm csxisiter if! ths lisof systom centrai 
psicscessin§ tjcft and wfcoid siiminate m overwits ihe 
ps^sgrsm from rnen^ory onoa the program connter in- 
formetion indicates that the pstjgram is no iongsr run- 
cing, Anothof technique is to arbitmdiy oompiemeht 
seclofs on the disk where ti-!© program is stored io in- 
dicate that the progs-asri is fanning end to cosrtpiamant 
these sector s sgain when the progs'am is finished in 
esder to fostors tiiosse soc:tof.5„ This wooid make 
copy of ihe prograf^'s from memory that does not §o 
through tha norsrtai startup.'firiish sapuanoe dasrtag- 
ing to the ififormation on tha disk. The pnagram state 
couid not be captured at an arbitraf y point, saved to 
disk, ai^d ister restored for further executions. The 
disadvantage is that power ootsgea, maets, or athar 
ahnormai termjinetions wouid feava the disk in the ai~ 
tered state, Anothertsohniquowooid he to encode the 
system lime iota the program's rnemcry if^^age, and 
chaok it with the current aystat^-; tisriO on a f raquant ba- 
sis, Tha ps'ogram couid be eiitrsinated if the system 



time nas ierge discontinuities !h,at !ndk:,i5te ;ho pro- 
gram rfi;=;y tiav;; beer? savsti avui restored fr;riais:re:<-.5- 
Ciit:C!!\ Yes a-x.-iher lecimii^ue w(jukj be to eijccide 
sensitive ;n;ofmrshon abcot ihe use-- into ti^a pro- 

5 grani s nien';cry h-nage. This co-jin he a credit ceni 
■rymtisr c.-r !h« ijsrir's pbc-ne norr>i>r:r This woijid not 
ijnty discocrage giving isway cijpies (5f e>tecutabia 
tr.esviory itvsages iiiegaiiy saved, hot svo-jid aiso aiiow 
iracehack to tf^e source of ihe de-secored or aite:~ea 

■fii software. One skiiied in the art onuid impisment 
ttjesa a-xS tJttief 5eiJhi;i<ii;es so p-eveiit piracy by ccijy- 
iftg exac^jtabia copy of the program irom msa>ory. 

in adoition to tha ebcva, vario-js ether security 
fmi?ef?ccments arc; pC);;sibio. Fcir ^:>:afop'•;^, a dt;vr:iop'- 

is er"s -coikit cc-uki prcivkie metf-cds o? chargir-g other 
than on a par <jaa basis. This mignt inciude charging 
by tita numt;erof f iias created, hy she hour or day, ate. 
Atso, it might he possibio to aiiow singie caiis to rjxsre 
expensive teiephsjne nu-ntjers to a(.i:hisri:-:» n;u;iip;fi 

a' uses. F cr exam pie, if each use cost $0,J'i ort a per 
use basis, a caii to arsothar number might cost S6,00 
and aushori.^o 10 v-i;es, white another rrumbisr rfjight 
iXisi: $5D.i.'!0 £snd isutixihi;!? SOD us^is, giviijg she ijser 
a si)bsta!?ti3i voiuf-^e d;scoun;. i nase "devaiopef's 

i'S tooik:t'" oanved versions of the secured software 
wocici nave to bo ania to s,sva themsoivos on dis!-, in 
a ,sei!^i-sis-oufed fori'i wish a s(if;ware cciur-ser ttjat 
keeps ir;i(ck oi she ■lUi^'iPef oi execuiioi^s.'operations 
tatt. it vvouid aiso ise consioerabiy easiarte make Uiv 

3;j au;hori,^oci copies and iitogaiiy distriSKiSe copies witn 
the "cc'.jnsers" si;!. tc t5igt5 vaiues. Emijeddi-ig Uia 
ijser's vaiifiad credit care; nuniijai a-xt phone nijnics;' 
wouid probabiy -irevecs i^-;cst peosie from dis;r!b-;jt:ng 
iiiegai ccnics. Anot-jer vv,3y to trace iiisgai ccnies of 

3S semi- secure-} discrvuri; vr-t-jnio uisaye set ' vv.ara w<:i;id 
ba -o -anciof-iiy, fcjr e.xanipie cjnca every o ■ 10 axe- 
custiOr:s. erase a isyte of the progranVs :n-!aga from 
memory and eisk, and then rec^-iire the user so caii a 
toi:epbOf!o ntjmber The user wcsjid thers pmvye the 

4!) ERiiObef Cispiayec; cr; ti-ie sssean, fcra>:ii;f-^pte ttje psc- 
gram sD a-xt tha efssec addrass, and -he teiecnone 
response syssem wouic! gr-,'e ;;ack wnat was ntisssng. 
if; inis way a roccrd of SiS;tep;K::-ie non;i>ers is gener- 
a-ed c;; users with sansi-secsjred vc;icn5a usage soft- 

*5 ware, if a comoar;son c; this nusnber i;s- gat^arated 
iarge caii vciumss ■J'rom numbers tha; were no; on ihe 
per caii sorvio-a fei? uuvnbar ii:st. ttiori tixsso cumtiers 
(r-i-y have sitegai capias of unsecured scit-ware. With 
a deveiocsi' s tcoikit, rando-vi -coi^nJiiiauo-ia -Pf sacur- 

su ity methods migh! be appiied to a particuiar piece of 
softwars: so hi.at ttse niotncids for securing -different 
pieces (jts-cfiware are dif-etei!!, Deveicip:f;g a rrjefh- 
od to break one software package wcuid n-st be ap- 
pficabia to sater versiorts of the same orddferenf soft- 

{is wars packages. Tixise anrJ oiher i;oc«Jri-y t-:?cf!nif5ur;s 
■0 P'-evefittfie unau;ixrii;ed c^ecf ypti-cn of tf!e SiK;u-e-d 
software couid he readiiy impiarnenied by tnoss sKii- 
ied in the art. 
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i(i ssch of the ssfibodffpesote dssersinsd above, 
thsrs are ssverai possible var iatlorss for the tmnsmfe- 
ston of data boiwes!': ih& vasklaJion system 1dO and 
ths user system 140, l« trie simpia^t, a us&rmay mil 
a leisphone ?t«mber and «peak to s person who has 
accesss io thevglidsstioff system, The twt) humaf! op- 
emlofs mukl camfixisifcate: the isTformatiOn ofsify. 
The softViT^m s,ise!'w05ild then pmvid&the required io- 
fofSTsatloft to the user system. AnothervaHation would 
be fof the user so Kjii s teiaphone nusnberwhicin con- 
oecf s ifm usa«* la sn aotomstod s'esspaose system can- 
iiacted to the vssisdsison .system. In this cssse, iM m&e 
cmld use a tsSephono keypad te pass information to 
the vafidatfqn system, and thn s'aSidatton system 
cduid pass scfocmsiks'! b,ac;5<ic< Ifie liserfoy veics syn- 
thesis or s'scordiftg. A further vehehen -muM foe to 
transrs^ildata botwean the systams vie modem. In this 
way, the user system wojiid commuiitcaie diTSictly 
with ths vaiklaiiofi syslsni; via eisdmnic commtin'sco- 
tioRs, Thus, ttse vaisdsttoii of ti^te seeisred software 
woisid ijs aSmcst transparant to the uesn 

it is to fee understood that the embodiments and 
vofiatsons shovifp and doseribad hsfsin are (ilostrjstiva 
ofths pilftcipies ofthis tfsvents'ononiy arid that va,riotiS 
modif ioatione ma^'be Imf^emeotsd by those skiiSed in 
the art witheut depafting fmn the scopo and spirit of 
tha snvectfon. 



Cialms 

^. A system for the vaiidation m<l use of secured 
cop^poter software cop'^pdsspg; 

a -softvi'are validation system; 

a sofivvara usef system comprising se- 
c-umd sof tw;w»; 

a cop~!mupicatiofte network conneoted to 
the software vaiidahon system and the software 
user syjstem for Jba tfansmission of datss between 
Sba sysitems; 

seid software vaiidatson systep-; compsis- 

means for storing aj ie.asi one decryption 

key, 

means fer reoaivipg ftW) said usar system 
over said oommunioatiorfs natwerk so ideptif Ica- 
iim of Stsid seairssd: software, 

meafis fdf rstcording the receipt of said 
tdentifisatiop of secured software, and 

meens for Iransmitttng to s,^id trser system 
ovar said communications nelworl'; a decryption 
key choserf f foot said at iaass one stofsd dacr yp- 
tiori key, wherein said chosen decryption key is 
ospaisia of decrypting said identified secured 
softwara; 

sak3 software usar system further com- 
prising; 

meaps for transmitting seid sesured soft- 



were idei'itif ipation to the ,soft ware y,^lids5tiGn sys- 
tem ovar said aamiTiiinlcahons network, 

means for t^ceiving said chosso decryip- 
f icp Key oapatjie of decrypting said identified se~ 
5 pyred software from said software vaildatio>p 

system over said c.on"stTiMnicafion:S netvvorki and 

means for deerypiirfg said saotsred soft- 
were using said chosen decryption key, 

10 Z- A sof tvsarts vaiidatioo system eompdsloigt 

maaf^s for storing at iaast ana dsa'ypfion 

key; 

means for reoeiving from a pommynica- 
tions network an ideniificalion of encryptod soft- 
is ware: 

rrseans fcr resordlpg Ibe receipt of said 
idantification; and 

means ft)r transmittii"!g to ti^a communit^tj- 
tices network a dacryption key chosefi f mm sski 
gp at ieast one stared decryption key. wfierein said 
chosen dec^yptiop key is capehie of deorypting 
said identified ena'yptad software, and 

wiierein a fea is aharged for tha estahiish- 
ment of ooi^'sfiuPicatioh ever the edp^ri^cploetions 
i'.s network, 

3. The software yaiidaticn system of ciaim 2 f nrftser 
cempdsirig; 

means for masking said decryption key 
3P with a randoiT! number poor to transmitting it to 
ttie corfsmfjaiaations network. 

4. The software vaiidation system of pfaip~! 3 f orther 
compnsipg mssns fr)r rocsivi ng ssiid randtjm 

3S number from the comrrxinications notwork, 

5. The software vaiidation system of claim 2 further 
comprising: 

pieans fof generating a first rssndorn ofjm- 

4!) bar; 

means for t^ceiving a seeopd randoi^-s 
number from the communications network:. 

means for produolrsg a third raadofri notrr- 
her by concatanafing said first random number 
*5 and said seaond random ni,>mt5er; and 

means for masking said decryption key 
with said thirti rar?dom nsjmisor pdar to iransmit- 
ting it to the cop'srnunioations neiwartt, 

m The software validation system of ctasms 3 or 6 
further compnsiog means for encrypting ssid 
masked decfypfson key prior to transmitting it to 
the oompiunications natwork, 

{is The softwara vaiidation systeiTs t>f ciaJm 6 where- 

in sisid means for encrypting is by ose of a puhiic 
key eneryption aigoptnaf. 
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I, Tile sof twam v«iid«tk)?i system of dsim 2 f urthfir 
nieans for gunmminQ a fifsl rs«dom fjsjm- 

b&r, 

means for erscfyptmg ssJd first rsndom 

meafjs for ^rarsssriiitiiig said sncfypled 
Um mndoro mrobsf to the csmmonisjatiofis net- 
work; 

f?f«ans for rscefvif"!g m\ oncs'ypted second 
(■8ndaf« ffumbor from ttfe cosTimynscations niel- 
wofk, wti&mm said escersd random: nsimbar eom- 
prisss a f is'si sactlor? snd a secofid saction: 

iTisans for flscrypting srsld socond ran<^om 
ouo-s&isr; ajxi 

ttmm for maskiji^ ssid dwtyplUxi key 
with sa»d ssGoad random number prior to tmf^s- 
mSting ft to tho coiTsfmJok;j3tior5s netwof|<. 



ma^^;ad and >3?iayptsd prior to rscsipt, tho ssya- 
tom f urt:h»F Cxsmprlssog: 

means for dssrypiirfg satd encryp^sKi 
n^asked dscf yption key; 
5 maonS' for ganarating a rondom ntirrsfosr; 

rfiosos for trarsssTiistins sssd randoj-fi pom- 
bsr fo iha commonfKstiorfS aetitvofk; sod 

moans fsr unmasking said ooeryptsd 
maslted decrysstion key mth said rarsdari mm- 
10 fc'Or. 

13. The software ossr compister systom of cMm 10 
further comprisirig means for provondr^^ the un- 
suthOFisod doc.f ypMon of satd gncryptsd c-omput- 
ts sf pfogrsro code sf ismrfsurficaJiof; ovsr Sfs com- 

myniaaS sons nsSwefk has nQt b&en iBitiatsd by a 
tstephorjo mtl which rssylts in a por cai! sorvios 
foo. 



Ths software vaiidation sysfefi^ of claim S furihar gs- 
oomprising; 

sTieaiis for dotorfrifoiftg whether said first 
or second section of said soccnd fsssidssf! nasnbssf 
is sQua! to said tlrsf random number; md 

sTseaDS for masking said doa-<f'pt!on key i's 
with said second raodorrs riumijor prior ti> trans- 
(Tsiiting aoly if said first or saoand seclion of said 
second s'sndom nonibsr is oquai ts said first ran- 
dom npmt>ef, 

1:6. A softvk'ars o:s8r compsjfor system for ffre oxecu- 
fion of secured soffwas's:, the sysfan^ comprising; 

ersorypted computer program coda: 

rrseens fertransmitfing an idantifioatfori of 
th& ooorypfscl cosnputer program code to a o:>m- 3S 
roc aicaf ions network ; 

means for racaiving a decryption key from 
tho eommonicstions fretwork, said decryption 
key ctapabfe of deoryptfng said encryptad cojTf- 
pufsf pmgrarn cods; and 4!> 

sTsasEis for decxrypting said encrypted oom- 
pufor program code with said daeryptiors koy; 

where in a fee is cfiargod for Iho initiation 
of fh© sjommortfcaticn over the commonicalions 
network, *5 

1:1, Ti^s software user computer systerft of ciaim 10 
wiwein said rsceivad doiS'ypticn key has been 
masked prior to roceipt> the system f crther com- 
prising:, m 

rsjeans for generating a random number; 

means for iransmiffing said random num- 
ber to the pommonioations nofwork: and 

means for unmasking said masked de- 
cryption koy witli said random nomtJOf; 

1:2. Tiie software cser comtpufer system of ciaim 10 
wheroln said roceivod dooryption key has t^esn 



14. A software yssr compotes' system for the ssecu- 
tion of seccred softwaro, tho systam cop'igRsing; 

encryptod corripotsr program codo; 

rnessns for transrtiitsing a softwi-srs identi- 
fication sdenlifying tiie encrypted compiiter pro- 
gram code to a comm:t<nlc.ations network; 

means for gonoraflrsg a first randero n«n> 

bar; 

means foi" receiving a secocd random 
niitrtt^ar; 

moans for combining Said first and socorsd 
randi>rn number to pmdutje a f hsrsl fandom nom- 
ber; 

moans for mcoiving a masked dsoryptiors 
key cspablo of decrypting said encrypted com- 
puter program code: 

means for unmasking said masked de- 
cryption key wifii said third randosri number; and 

moans for docrypdny said eneryptod ccn> 
puter program code with said <fecf yption keyi 

wherein a fee Is cbargsd for the Snitsstion 
of tfie ocmfriunication over the oommcnicafions 
nstwoi'k. 

1 5. The system of cfaims 1 , 2, 1 0 or 1 4 wberein ooov 
munication over the oommunicalions network is 
initiated by s tef epicene caii which results In a per 
caff service fee, 

16. Ti'ie software user oomptiter system of ciaim 14 
wherein said masked decryption kay is encrypted 
prior to rocoipt, said system fufther comprisli'sg 
means for dscrypfiag said encrypted masf<.arl key 
prior to unmasking said key. 

17. The seftware user computer systetTi of ciaim 14 
«?herein said se<;ond raadoo"! numfjer is encrypt- 
ed prior fo receipt and said srsasked decryption 
key is erscrypted prior to receipt, said systom fur- 
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fhsr comprising; 

means tor ctecs-yptlng said gncfyp^srf 
masik&d key pslor to urio'saskiog sakJ key; asd 

means fo!" decyypUrsg said eiio'ypted: sss- 
md raridom number prior to combirisng sasd first 
faodom nombei' arsd s80on<S random nyffiter. 

18. A eompytor system for ths r^g'Stratbn of soft- 
wars and the geiieration of ssour^d soffwars 

f V s i« ..If > >n s j'U^ J'* tdt=' ' )'! 
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IS, life cc<s«f)u^&r sysism of dslm 18 whsrafo said 
ssoored softwafs msxtoSs comprises th« sna'ypt- 
ed axecutsidle software file and computer pns- i's 
gmm cods, ssjtd e{>roputer program code osra- 
pnssfjg said messfis fer de^rypling the Sxeeulabls 
software f ite using said at issist one key, and 

wherein said at ieast one ksy is recsivad 
by a ifssr only aftsr said user piacas a taisphona 3;J 
issti vi;h:fch fssijits «t a pgr fSsSS servics ffea, 

A software validation system for ti-iS registration 
of pfotsctsd softwsro, ti-fe syslom: oompfisiag; 

mearis for rMsjiviug software* sds^rstifsca- as 
tion !ntcjf«>ation from m commorfiGaisons network; 

meaiis for gansi-ating a unique software 
(deofffieaSian nods ft)r said received software 
identfficsjtion; 

meafis for §snsf atin^ at least one otypio- 4!> 
gf apf'iic l<,ey; 

rrseans for tmasmltting said unique saft- 
wgre IdantlfifiaEloa coda and at least ona crypto- 
graphio kay to tile communioations ftstwofk; and 

means for storing aaki unique software *5 
(deaf if ieatiari and at least rsne cryptoqraphio t<ey, 

wi^arain said at least ono t»"ypj?)grapi^i:c 
koy wiiii ba uaori to gerfsrate a saour&d aof iware 
module, said secured software module beirtg 
executable by a user computer systerr* only after &s 
race Ipt of said atiesstope crypSe^raptiic Isey ovar 
a communlealkisis sielworf*., wiienaisi said receipt 
of said at least om cryptogrspiilo key is initiated 
l3y a telopliope oaii whlofi wil! roaoit iu a per call 
st^rvicJJ fsse. 

2i. A metfiod for the vaildatioa.and use ot encrypted 
secured software comprising the steps of; 



a user of secured software iastiafiog a tei- 
ephona aaii which will rssult in a p&r cali service 
fee, said teiephoas sjli sstabiisbi'ag cornjrfonica- 
tion over a commuDioatlons netwofk tsetwaen 
said user and a software vaiidation system; 

said «ser of jiecuresd sof t wjjrss transfpit ting 
,'Sec«r»rl software idantlflcalion fa the software 
velideSoft system over ti-fe ocrnsTiunications net- 
v^ork; 

said software vaiidatiofj systam traasrf?lt- 
tin<s to said aaer over the isspimoifilcatlons net- 
wcrfi a deOE'yption isey capable ef decrypting said 
secured software; and 

decryptfag said securssd software wish 
said decryptioa key, 

22, The rr»etiiod of claim 21 further comprising the 
steps of: 

generssttng a random nujnber in ttse user 
oornputer systam; 

transmitting said random number to the softwasB 
vaiidstion system: 

mast5,lng said deoryption kpy with a rari- 
Pom nornbar In said sofSv/em velldatior! s>'Stem 
prior to transmitting the decryption Key to the 
user; and 

sjnmaskiog said decryption key wItt! sssid 
random number in the user's computer system, 

33. A method for validating secured compptar soft- 
ware oen^prisipg the steps of; 

storing at least one decryption ii:ey; 

reoaivlngf rom: a communications network 
an identification of encrypted softwarsr; 

reoordfag the receipt of said ideatificatfon; 

and 

transmitting to the communications net- 
worfc a decryption key chosen fr«)m; said at teasf 
one sstoreri decrypban kay, wtrerein said ohosen 
decryption key is capabie of decrypting said iden- 
tifiep encrypted software, 

wherein a fee is ciiarqed for ttse establish- 
raerit of cornmMaication over th e comma nications 
netv/cflc. 

24. The method of claim 23 wherein said establish- 
mant of ctmsmani&atlon over the asrrsmpnicattoos 
neiwcrk Is esiablisbed by placing a telephcEje s^sii 
which results in per call service fee, 

25. Tha matbod af claim 23 further comprising the 
stop of masking said dacryplkm t«.sy with a ran- 
dom number prior to transmitting it to the commu- 
nications networl^., 

26. the rtiethod of claim 25 further cOTiprlstng the 
step ot receiving said random number from the 
communications network. 
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27, The me^od of (Mm S3 fisthsr co^Tjprislrig th& 
steps «f; 

receiving a second rsftdom nsjmbe!- fswt 
the* Gonwunic^tiops rsstwork; 

prsidwdsg » third rEsndom numbssf fey con- 
fejiftfiatiog said fsrsi: rarfdam numfesr and said 
ssc-orsd random !-!amfesr, ssid 

sTsasking said decryption ksy with said 
fhird rarsdom numbsr pr'sor to Jraosmitling it to the 
cojrfB-! li !-!!c:aSi0i-s8 net wsr k, 

28. Ths ETiSthod ofdaJms 2$ os' 27 f urther comprising 
d"!S si:ep of ©ficrypting ssid miSsfesd: decrypdon 
ksy pnor to imrssmiftiiig it k> irsej iXsmrriKfiscaikin 
nstwosi;, 

2%. Th® method of claim 28 whoroin said step of on- 
crypfing is by use of a public key erfcrypfion a!- 
gorili'sm. 



33,. The matlrod of cSalfr; 32 wfi^roin said fecs!V8d do- 
cs-yption k»y has been m;isitsd prifsr to reoeipt, 
fh« !Ti8t{iad fuftfiaf comprL'sing ih« sfeps of: 

gsnemtiiig s reridcn'* siumbsr; 

trscsm^tting said raiidom nomber to il^o 
commMnicstions nelwork; and 

unmasking said masked decrypiicm k&y 
■with said s-sndom fjwm&sr. 



34 The method of daim 3S wiierein said mceived d»- 
cf yption is.®>' has been masked and encrypted prs- 
0)" to receipi, tM mslhod fostiier somprising She 
stepS; of; 

dscrypting said encrypted maskod de- 
crypllci^ key; 

gefieratiiig a rsiidofi^ nurnbsr; 

transmitting said random nismbar to the 
cemsmunicsjffona net'*'Of^; and 

sjnmasking said encrypted meskMi da- 
cryptiori key wiih said raridom numbsr. 



38., Ti^s method of ciaim 2$ further' comprising the 
steps of; 

gsnsratihg a first random ncmfeer; 

enoryptin^ ssid first random Dumber, 

transmitting said eajs-yphsd first random 
nomlxsr io d"ie commiinscations netwerk; 

receiving an sffCj-ypied seecnd random 
nnmijsr from the commynicstions network, 
wi';«rein said second random nomber cjsmpdses 
a first sfScbofs and a second secbofi; 

dsoeyptiiig ssid sstxind randrjm numibsr; 

and 

masking said decryption toy wish said 
senond randarn risjrf)i>er prior to transmitting it to 
ti^s oomrnunicatians !i«twori<„ 

31, JiiB method of ciaim SO further comprising the 
steps of; 

daten'nining wbeihsr said first ar second 
section of said second random nymbor ts souai to 
said first random nnmbor; and 

masking ,9aid decryption key witfi said 
second mndom ncmher prior to tr^snsmitting oniy 
if said first or second ssction of said second ran- 
dom aumisof i.s ooosi to said first random nombar. 
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3S. Tbo rrrati'ioii of oiaim 32 further corfjpfising ttse 
stepfif; 

psBventing ths unantborised decryptiort of 
said enorypSod compytar prc-grem code if com- 
municstion over tho comrnonications natwork 
iias not ijeen iniiiaied by a telsphGne caii rasoit- 
ing: in a per oaii servioe fee, 

3§. A fhethsd for tho execution of encrypted secorod 
,^5oft».'are corr^ipdsf ng tha steps of; 

initiSiing coffimoniGabon over a eommani- 
cations network whioi^ rosuits in a service fee; 

transmitting a softwars fdontification 
idantifying tbe seeufed software la tfia eommu- 
nicaiions network; 

gsnsfsting a first random number; 

reoeivsng a second randorrs number; 

combining: said first and seoiJnd rsndom 
ncmherto pstsdcoe a tbiKi s'sndam rtumbsr; 

receiving a masksd decryption key cspa- 
bis of decrypting said soa<rsd software; 

unsftasking said masked dacryption key 
Wftb said third random number;: 

dscrypting said secured sofiwam witi^ 
said decryption key. 



SS. A fsetbod for ttsa exeouiiars of ancrypted secured 
software compdsing tbe steps of; 

initiating oommcnication over a communi- t« 
cations network whicb resoits in a service fae; 

iransmiiting an idarftificatson of tbe se- 
csij-sd software to tbe commonications network; 

receiving a dscryption key from the com- 
muniCcitions network, said decryption key capa- 
iJle af decrypting sski secured software; and 

decrypting said secured software with 
said dets'yption key. 



37. The mattiarl of ciaims 32 or 36 wherein said sJtep 
of initiating ccmmonication over a con'stounica- 
tions notwofk comprises tbe step of placing a toi- 
epbane eaii resuiting in a per caii sarvica fae, 

38. The method of ciairn36 wherein said masked de~ 
crygtion key is encrypted prior to receipt, said 
met hsxl f urtl'ier oorjipdsing the step of decrypting 
said enarypted masked key psfer to unmasking 
said key. 
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3§, The metiKxj of dairrs 36 whsmin ssid second rm- 
d«m rhumbs? is «>ncrypted prtorto mcaipiand: said 
masik&d: dacr yptfort key is ena'ypted pEfer la ce- 
rnlpi, said metS-fod ftarSi«f oomsis'isii-ig the ste|>s 

oft 5 

or to sjomaskfog said key; and 

dswypting said sns'yjjted secorsd random 
number prior to cofrsbm i rsg said fmt mMom num- 
fosr arid sscsahd mndom nwmlw. w 

48. A method for ths csgisls-adofi of software 8«d ths 
geoefaiion of socurod sof t^-v^ro comprising tho 
steps: 

!;fansm!il(n9 softwars idendfication infer- ts 
mstion to a communicatsorss rsetwork; 

receiving at least ofis key and a unique 
softwsr® id^nsificadsf! fresfrs ttis commanicatloiis 
network; arsd 

Si-!a-ypii!>g an 8xao«tafole software m» us- so 
ing said at isesi one key to ci'oate e seoursd soft- 
wars fnockiis, 

v/ffsmifi s&kl sxeciifasbte s«fts<var& fiie is 
(sapa&is of being axecytsd by a tiser onb/ after re- 
ceipt of said at ioast one key. n- 

41. The JweSjad sf siaim 40 whes-esn said at ieasi <m» 
kay ss racstvsd by a sjiser oniy after said os«f ioi- 
tiatss a telephone call to a teiaphorje nsimbar 
which rssuits m a per eail ssfvicss fee. 3;J 

A software valsdatior! method for the registmhon 
of protaotad sof twere comprism§ tt?e slops: 

fsceivfog software idgritificaliori infofma- 
tion fmm rs corffmynScatfons network; 3S 

generahi-sg a rinsqsja software sder-tifsca- 
tiop code fer said raosived software identiflc-a- 
tisn; 

genrjratsfjg at Inasr ofie* cryptfigrapi-ssr; ksy ; 

tsarjsintt-irstj s,aio liniCjos; so- t-vvssre ide-^tii s- *> 
e^tSion oode arid af ieastona oryptographickeyto 
i.tic ccninH.icicatioos notwork; snc 

Si-Ofinsj sr-id unks-jsi softs^jara k!-.5r;iif;c:atien 
and as iesst one isypUjgsaphic ks-ry: 

s's^iiaraln aa:d at ieast or;a oryptC"5rapi~i;C *5 
koy w;:! ;;e s.issc io gontsrate a 3scs.if!?d sof swars 
rnodula, said se««r»d se>ftw3r8 frndrjis being 
exsfCuiaJiio f>v a usor cosripijiisr sysasr-j oniy af ief 
reooipt of said at lasst one oryptc^rapl-iic key over 
a oornmi.soications ne;work, wnero:;-} said rscOiOt m 
of said at !;;e-:s! ens; cf yptrigrafii-sic k^:y is initiated 
by a teiephone «3il which mil resoit in a p«r cai! 
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